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DETAILED ACTION 

1 . Applicant's arguments filed June 22, have been fully considered but they are not 
persuasive. 

Response to Amendment 

2. The examiner withdraws the objection to the specification. 

3. The examiner maintains the objection to the drawings. 

4. The examiner withdraws the rejection of claims 1 1 , 27, 43 under 35 U.S.C. 112, 
second paragraph. 

5. Wood et al. teach a security architecture providing a single sign-on. Security 
credential are used to maintain continuity of a persistent session across multiple 
accesses (see Abstract). Furthennore, the entry handler functionality (column 9, lines 
65-67, column 10, lines 1-29) teaches using the information gathered by the gatekeeper 
to determine particular authentication mechanisms to trust levels and for authorization 
decisions. 

6. Assuming arguendo that Wood et al. does not expressly teach that a second 
signal representing a second request to the secure resource is sent from the server 
wherein the second request includes the required security credential as determined 
without the intervention of the user, it would have been obvious to one of ordinary skill in 
the art to modify Wood et al. to send a second signal representing a second request 
including security credentials since to access a secure resource since that is the 
functionality provided by Wood et al. Wood et al. expressly teach a single sign-on 
architecture, where a user is authenticated, and then a mapped set of credentials is 
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used to access secure resources (column 14, lines 1-67). Furthemnore, the single sign- 
on architecture of Wood et al. may be implemented in different ways (column 21, lines 
20-42). Therefore, using a particular method of authentication or sending a specific 
number of request, is irrelevant to the final result achieved by both, the instant 
application and Wood et al., of accessing secure resources within a network. 

Drawings 

7. The drawings are objected to as failing to comply with 37 CFR 1 .84(p)(5) 
because they do not include the following reference sign(s) mentioned in the 
description: 408 (page 4, line 1 , perhaps 208 was intended), 616 (page 14, line 3). * 
Corrected drawing sheets in compliance with 37 CFR 1.121(d) are required in reply to 
the Office action to avoid abandonment of the application. Any amended replacement 
drawing sheet should include all of the figures appearing on the immediate prior version 
of the sheet, even if only one figure is being amended. Each drawing sheet submitted 
after the filing date of an application must be labeled in the top margin as either 
"Replacement Sheet" or "New Sheet" pursuant to 37 CFR 1.121(d). If the changes are 
not accepted by the examiner, the applicant will be notified and informed of any required 
corrective action in the next Office action. The objection to the drawings will not be held 
in abeyance. 

Claim Objections 

8. Claim 16 is objected to because of the following informalities: it states "currently 
amended", but there is no changes with respect to previous version of claim 16. Claim 
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16 is similar to claims 32 and 48. which are not amended. Examiner has interpreted this 
as a mistake and thus treated claim 16 as "original". Appropriate correction is required. 
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Claim Rejections - 35 USC § 102 

9. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in a patent granted on an application for patent by another filed in the 
United States before the invention thereof by the applicant for patent, or on an international application 
by another who has fulfilled the requirements of paragraphs (1), (2), and (4) of section 371 (c) of this 
title before the invention thereof by the applicant for patent. 

The changes made to 35 U.S.C. 102(e) by the American Inventors Protection Act 
of 1999 (AlPA) and the Intellectual Property and High Technology Technical 
Amendments Act of 2002 do not apply when the reference is a U.S. patent resulting 
directly or indirectly from an international application filed before November 29, 2000. 
Therefore, the prior art date of the reference is determined under 35 U.S.C. 102(e) prior 
to the amendment by the AlPA (pre-AlPA 35 U.S.C. 102(e)). 

10. Claims 1^8 are rejected under 35 U.S.C. 102(e) as being anticipated by 
Wood et al. (US Patent Number: 6,668,322, hereinafter "Wood"). 

Regarding claim 1, Wood teaches a method for use in a server, comprising: 
receiving at the server a signal representing a request from a remote user for a secure 
resource residing on a network employing a generic application-layer network protocol 
(column 9, lines 19-40); determining, without the intervention of the user, the type of 
security credential for the remote user that is required to access the secure resource 
(column 9, lines 65-67, column 10, lines 1-29); and sending from the server a signal 
representing a second request to the secure resource, the second request including a 
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security credential for the user of the type required to access the secure resource 
(column 12, lines 66-67, column 13, lines 1-20). 

Regarding claim 17, Wood teaches an apparatus for use in a server, 
comprising: means for receiving at the sewer a signal representing a request from a 
remote user for a secure resource residing on a network employing a generic 
application-layer network protocol (column 9, lines 19-40); means for determining, 
without the intervention of the user, the type of security credential for the remote user 
that is required to access the secure resource (column 9, lines 65-67, column 10, lines 
1-29); and means for sending from the server a signal representing a second request to 
the secure resource, the second request including a security credential for the user of 
the type required to access the secure resource (column 12, lines 66-67, column 13, 
lines 1-20). 

Regarding claim 33, Wood teaches one or more computer-readable media 
tangibly embodying a program of instructions executable by a computer to perform a 
method for use in a server, the method comprising: receiving at the server a signal 
representing a request from a remote user for a secure resource residing on a network 
employing a generic application-layer network protocol (column 9, lines 19-40); 
detemiining, without the intervention of the user, the type of security credential for the 
remote user that is required to access the secure resource (column 9, lines 65-67, 
column 10, lines 1-29); and sending from the server a signal representing a second 
request to the secure resource, the second request including a security credential for 
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the user of the type required to access the secure resource (column 12, lines 66-67, 
column 13, lines 1-20). 

Regarding claims 2, 18, and 34, Wood teaches authenticating the user before 
sending the signal representing the second request (column 12, lines 10-37). 

Regarding claims 3, 19, and 35, Wood teaches receiving at the server a signal 
representing a response to the second request (column 15, lines 5-6); and sending from 
the server a signal representing a result to the remote user (column 15, lines 7-8), the 
result based on the response to the second request (column 14, lines 60-67, column 15, 
lines 1-8). 

Regarding claims 4, 20, and 36, Wood teaches wherein the request includes a 
logon credential for the remote user, further comprising: authenticating the remote user 
based on the logon credential before sending the second request (column 14, lines 20- 
60). 

Regarding claims 5, 21, and 37, Wood teaches wherein the request includes a 
logon credential for the remote user and the type of security credential required to 
access the secure resource includes the logon credential, further comprising: sending 
the signal representing the second request to the secure resource, the second request 
including the logon credential (column 14, lines 20-67). 

Regarding claims 6, 22, and 38, Wood teaches receiving at the server a signal 
representing a single-sign-on (SSO) credential generated by a SSO provider based on 
the logon credential (column 13, lines 60-67, column 14, lines 1-10); and sending from 
the server a signal representing the SSO credential to the secure resource when the 
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type of credential required to access the secure resource includes the SSO credential 
(column 12, lines 66-67, column 13, lines 1-20). 

Regarding claims 7, 23, and 39, Wood teaches sending from the server a 
signal representing the SSO credential to the secure resource when the type of 
credential required to access the secure resource includes a second SSO token 
corresponding to a second SSO provider having a trust relationship with a first SSO 
provider corresponding to the SSO token (column 6, lines 9-56). 

Regarding claims 8, 24, and 40, Wood teaches receiving at the server a signal 
representing a second SSO credential generated by a second SSO provider based on 
the first SSO credential (column 13, lines 60-67, column 14, lines 1-10); and sending 
from the server a signal representing the second SSO credential to the secure resource 
when the type of credential required to access the secure resource includes the second 
SSO credential (column 12, lines 66-67, column 13, lines 1-20). 

Regarding claims 9, 25, and 41, Wood teaches wherein the generic application- 
layer network protocol is hypertext transfer protocol (column 9, lines 19-40, column 11, 
lines 1-11). 

Regarding claims 10, 26, and 42, Wood teaches receiving at the server a signal 
representing data in response to the second request (column 15, lines 1-8); and 
sending from the server a signal representing at least a portion of the data to the remote 
user (column 15, lines 1-8). 

Regarding claims 1 1 , 27, and 43, Wood teaches wherein the secure resource 
includes a Web site, and the data is hypertext mark-up language (column 15, lines 1-8). 
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Regarding claims 12, 28, and 44, Wood teaches wherein the receiving includes 
receiving at the server a signal representing a request from the remote user for a 
second secure resource residing on the network (column 9, lines 53-64), further 
comprising: determining, without the intervention of the user, the type of security 
credential for the remote user that is required to access the second secure resource 
(column 9, lines 65-67, column 10, lines 1-29); and sending from the server a signal 
representing a third request to the second secure resource, the third request including a 
security credential for the user of the type required to access the second secure 
resource (column 12, lines 66-67, column 13, lines 1-20); and wherein the signals 
representing the second and third requests are sent concurrently (column 9, lines 19- 
64). 

Regarding claims 13, 29, and 45, Wood teaches wherein the types of security 
credentials included in the second and third requests differ (column 16, lines 15-35). 

Regarding claims 14, 30, and 46, Wood teaches wherein the types of security 
credentials included in the second and third requests are the same (column 16, lines 
15-35). 

Regarding claims 15, 31, and 47, Wood teaches receiving at the server a signal 
representing the security credential from the user before receiving the signal 
representing the request (column 13, lines 30-37, column 14, lines 4-20). 

Regarding claims 16, 32, and 48, Wood teaches storing the security credential 
at least until sending the signal representing the second request (column 13, lines 30- 
37, column 14, lines 4-20). 
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Conclusion 

1 1 . The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. Cohen et al. (US Patent Number: 6,178,511). Cohen et al. 
disclose a single sign-on system where mapped authentication credentials are used to 
access secure resources, including email, and database sen/ers (see Abstract and 
column 2, lines 22-67). 

12. THIS ACTION IS MADE FINAL. Applicant Is reminded of the extension of time 
policy as set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 
TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the end of the THREE-MONTH shortened statutory period, then the 
shortened statutory period will expire on the date the advisory action is mailed, and any 
extension fee pursuant to 37 CFR 1 .136(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the mailing date of this final action. 

1 3. Any inquiry concerning this communication or eartier communications from the 
examiner should be directed to David G. Cervetti whose telephone number is (571) 272- 
5861. The examiner can normally be reached on Monday-Friday 7:00 am - 5:00 pm, off 
on Wednesday. 
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If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz R. Sheikh can be reached on (571) 272-3795. The fax phone number 
for the organization where this application or proceeding Is assigned is 571-273-8300. 

information regarding the status of an application may be obtained from the 
Patent Application Infomnation Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 
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